2006-12-09 20:25:23 +01:00
|
|
|
#! @shell@
|
|
|
|
|
2006-12-10 23:29:44 +01:00
|
|
|
export PATH=/empty
|
2006-12-16 22:48:12 +01:00
|
|
|
for i in @path@; do PATH=$PATH:$i/bin:$i/sbin; done
|
2006-12-09 20:25:23 +01:00
|
|
|
|
|
|
|
|
2006-12-21 15:44:22 +01:00
|
|
|
# Needed by some programs.
|
|
|
|
ln -sfn /proc/self/fd /dev/fd
|
|
|
|
|
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
# Set up the statically computed bits of /etc.
|
|
|
|
staticEtc=/etc/static
|
|
|
|
rm -f $staticEtc
|
|
|
|
ln -s @etc@/etc $staticEtc
|
|
|
|
for i in $(cd $staticEtc && find * -type l); do
|
|
|
|
mkdir -p /etc/$(dirname $i)
|
|
|
|
rm -f /etc/$i
|
|
|
|
ln -s $staticEtc/$i /etc/$i
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
|
|
# Remove dangling symlinks that point to /etc/static. These are
|
|
|
|
# configuration files that existed in a previous configuration but not
|
|
|
|
# in the current one.
|
|
|
|
for i in $(find /etc/ -type l); do
|
|
|
|
target=$(readlink "$i")
|
|
|
|
if test "${target:0:${#staticEtc}}" = "$staticEtc" -a ! -e "$i"; then
|
|
|
|
rm -f "$i"
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
|
|
|
|
2006-12-10 23:29:44 +01:00
|
|
|
# Various log directories.
|
|
|
|
mkdir -m 0755 -p /var/run
|
|
|
|
|
|
|
|
echo -n > /var/run/utmp # must exist
|
|
|
|
chmod 664 /var/run/utmp
|
|
|
|
|
|
|
|
mkdir -m 0755 -p /var/log
|
|
|
|
|
|
|
|
|
2006-12-16 22:48:12 +01:00
|
|
|
# If there is no password file yet, create a root account with an
|
|
|
|
# empty password.
|
2006-12-09 20:25:23 +01:00
|
|
|
if ! test -e /etc/passwd; then
|
2006-12-16 22:48:12 +01:00
|
|
|
rootHome=/root
|
2006-12-25 20:32:31 +01:00
|
|
|
touch /etc/passwd; chmod 0644 /etc/passwd
|
|
|
|
touch /etc/group; chmod 0644 /etc/group
|
|
|
|
touch /etc/shadow; chmod 0600 /etc/shadow
|
2006-12-16 22:48:12 +01:00
|
|
|
# Can't use useradd, since it complain that it doesn't know us
|
|
|
|
# (bootstrap problem!).
|
|
|
|
echo "root:x:0:0:System administrator:$rootHome:@shell@" >> /etc/passwd
|
|
|
|
echo "root::::::::" >> /etc/shadow
|
|
|
|
groupadd -g 0 root
|
|
|
|
echo | passwd --stdin root
|
2006-12-09 20:25:23 +01:00
|
|
|
fi
|
|
|
|
|
|
|
|
|
2006-12-23 01:26:35 +01:00
|
|
|
# Some more required accounts/groups.
|
|
|
|
if ! getent group nogroup > /dev/null; then
|
|
|
|
groupadd -g 65534 nogroup
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
# Set up Nix accounts.
|
|
|
|
if test -z "@readOnlyRoot@"; then
|
|
|
|
|
2006-12-16 22:48:12 +01:00
|
|
|
if ! getent group nixbld > /dev/null; then
|
|
|
|
groupadd -g 30000 nixbld
|
|
|
|
fi
|
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
for i in $(seq 1 10); do
|
|
|
|
account=nixbld$i
|
2006-12-16 22:48:12 +01:00
|
|
|
if ! getent passwd $account > /dev/null; then
|
|
|
|
useradd -u $((i + 30000)) -g nogroup -G nixbld \
|
|
|
|
-d /var/empty -s /noshell \
|
|
|
|
-c "Nix build user $i" $account
|
2006-12-09 20:25:23 +01:00
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
|
|
|
mkdir -p /nix/etc/nix
|
|
|
|
cat > /nix/etc/nix/nix.conf <<EOF
|
|
|
|
build-users-group = nixbld
|
|
|
|
EOF
|
|
|
|
|
|
|
|
chown root.nixbld /nix/store
|
|
|
|
chmod 1775 /nix/store
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
2006-12-10 23:29:44 +01:00
|
|
|
# Nix initialisation.
|
|
|
|
mkdir -m 0755 -p /nix/var/nix/db
|
|
|
|
mkdir -m 0755 -p /nix/var/nix/gcroots
|
|
|
|
mkdir -m 0755 -p /nix/var/nix/temproots
|
2007-01-15 15:43:56 +01:00
|
|
|
mkdir -m 0755 -p /nix/var/nix/profiles
|
|
|
|
mkdir -m 1777 -p /nix/var/nix/profiles/per-user
|
2006-12-10 23:29:44 +01:00
|
|
|
|
|
|
|
ln -sf /nix/var/nix/profiles /nix/var/nix/gcroots/
|
|
|
|
|
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
# Make a few setuid programs work.
|
2007-01-15 15:43:56 +01:00
|
|
|
PATH=@systemPath@/bin:@systemPath@/sbin:$PATH
|
2006-12-09 20:25:23 +01:00
|
|
|
wrapperDir=@wrapperDir@
|
|
|
|
if test -d $wrapperDir; then rm -f $wrapperDir/*; fi
|
|
|
|
mkdir -p $wrapperDir
|
2007-01-11 17:29:23 +01:00
|
|
|
for i in @setuidPrograms@; do
|
2006-12-09 20:25:23 +01:00
|
|
|
program=$(type -tp $i)
|
2007-01-15 15:43:56 +01:00
|
|
|
cp "$(type -tp setuid-wrapper)" $wrapperDir/$i
|
2006-12-09 20:25:23 +01:00
|
|
|
echo -n $program > $wrapperDir/$i.real
|
|
|
|
chown root.root $wrapperDir/$i
|
|
|
|
chmod 4755 $wrapperDir/$i
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
|
|
# Set the host name.
|
|
|
|
hostname @hostName@
|